Topic: 2FA (Read 146 times)

2FA is basically a multisignature wallet with 3 keys and needing 2 keys to sign (2 of 3 multi-sig). there are in fact 3 master private keys being generated. you create 2 of them and TrustedCoin creates the other one (the 3rd one). it doesn't matter how many words your seed has or whether it shows these words or not, when you create a new 2FA wallet you create 2 master private keys and send the public key to TrustedCoin, then they create another master private key and send you the public key so the wallet is completed.

now what you store in your wallet file is a little different here. with a regular wallet you have a seed that generates all your private keys so you store that in your wallet file.
with a 2FA wallet you want to only store 1 key so that if your wallet is compromised it still requires the third party (TrustedCoin) key to spend the coins you have so you only store that 1 master private key instead of the seed which is 2 keys.

in the end there are always 3 keys:
1. master private key stored in your wallet file and used for half signing the transactions
2. master private key generated from your seed but neither your seed nor this key are stored in your wallet file, you have to write down your seed. your wallet only stores the master public key of this.
3. master private key generated by TrustedCoin and stored on their servers used to half sign the transactions

A while ago, there used to be a 24 word seed. I think this has probably been broken down a bit simpler (as everone kept losing their 24 word seed and there's not really much point in having two when you can do the same in one).

I always thought - supidly - that you have to input the same key that gets generated that you can then send to TrustedCoin (I must have gotton confused - yet again - somewhere).

this thread is where I first became confused as to these 2FA wallets.

There is no secret/password to add when using/restoring a 2FA wallet in electrum.




IIRC the seed has always derived 2 out of 3 keys (I could be wrong here, but i am relatively sure it has always been this way).
If you create a new wallet with 2FA enabled the wallet file just stores one of these 2 keys.
But if you decide to create it as a wallet with 2FA disabled, it will store both of the keys (which allos to sign transactions).

That's a nice guide.
Do you not have to input a secret somewhere, and if you do, this is the point where I think it is no longer simple as many people don't seem to learn the importance of keeping such things. Or does the seed derive both mprivs now?

Yeah... you can.

File -> New\restore -> Wallet with Two Factor Authentication:


Select "I already have a seed":


Enter your 2fa wallet seed and click "next":


You'll be prompted to "keep or disable" 2FA... select DISABLE:



That will generate a "2fa" wallet file that has two of three master private keys in it. You'll be able to "self sign" the multi-sig transactions without needing to use the TrustedCoin service.


Note: It is NOT recommended to continue to use a "disabled" 2fa wallet long term... you should create a new "standard" wallet (with a new seed mnemonic) and send your coins to that new wallet.

here are the answers: https://github.com/fyookball/electrum/issues/41#issuecomment-320099854
all thanks

If your electrum is the latest version, try using this: https://www.reddit.com/r/Electrum/comments/7cjzuv/how_to_disable_2fa_from_wallet/ - by adding the secret (if you have it) into the wallet so it can sign itself.

If not the latest version, there was a bug a while ago so try updating it to the most recent version (there may have been other bugs that went fixed but weren't as major to be reported).

this button also does not react, only the CLEAR button works


Yes available

Is https://api.trustedcoin.com/ available?

There's a preview button next to it that sends also? Click that.

It'll go through the send steps with a breakdown

the send button does not work

You can't turn it off simply.

You'd need to get a copy of your other private keys and find a client that will take both and allow you to sign them (electrum probably will).

Where are the other keys, are they hosted by TrustedCoin or are they on a separate device is it a 2 out of 3, 2 out of 2 signing relation also?

Try using the preview screen to sign it instead also, that at least breaks down the steps.

Tell me what to do?
I press the send button, but it doesn't react!
 how to disable 2FA
http://joxi.ru/LmGLoGxCRyGd12
http://joxi.ru/5mddw5zhkzw4Bm